Static task
static1
Behavioral task
behavioral1
Sample
9540b2f3375d42e404b65cab9c856e5b592a65fcf72f61cb2a34f8b7594d0fa5.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9540b2f3375d42e404b65cab9c856e5b592a65fcf72f61cb2a34f8b7594d0fa5.exe
Resource
win10v2004-20220812-en
General
-
Target
9540b2f3375d42e404b65cab9c856e5b592a65fcf72f61cb2a34f8b7594d0fa5
-
Size
209KB
-
MD5
4913853d02f52da098a7c96cfe0e744d
-
SHA1
91027c1db2d3db8dc40a2eca82709d7e9b23aec4
-
SHA256
9540b2f3375d42e404b65cab9c856e5b592a65fcf72f61cb2a34f8b7594d0fa5
-
SHA512
fbb8b9c1c6bc63e407feac3e0d43f4a2c25cadc9f6a82c92aa0cdcf791a8f409749ccd63b0d27fd1c32463d8c0c5713ca6405286926946a5b9b02feffc6fcb99
-
SSDEEP
3072:pZvA3B0NqgMm2XWoPAOpFr5Na4JnqYXGzUe/jXrTlyNv744Vv5bHX01CQQ257wfq:XoyXMykAOp04Jy/rrJyNjJ257yirG5Y
Malware Config
Signatures
Files
-
9540b2f3375d42e404b65cab9c856e5b592a65fcf72f61cb2a34f8b7594d0fa5.exe windows x86
328a5ca36033026afb801bf4b225e64b
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
HeapAlloc
LoadLibraryW
lstrcmpA
GetTickCount
GetVolumeInformationA
FindResourceA
CloseHandle
GetProcessHeap
GetCurrentProcess
SetUnhandledExceptionFilter
GetCurrentProcessId
lstrcpyA
GetLocaleInfoA
QueryPerformanceCounter
HeapFree
WideCharToMultiByte
CreateFileA
GetOEMCP
IsValidLocale
MultiByteToWideChar
SystemTimeToFileTime
GetSystemTimeAsFileTime
GetLocalTime
SetLastError
lstrlenA
scecli
SceAddToNameStatusList
SceCloseProfile
SceAddToObjectList
SceAnalyzeSystem
SceBrowseDatabaseTable
SceAppendSecurityProfileInfo
schannel
QuerySecurityPackageInfoW
InitializeSecurityContextW
QueryContextAttributesW
QueryContextAttributesA
QuerySecurityPackageInfoA
advapi32
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegQueryValueExA
Sections
.text Size: 143KB - Virtual size: 142KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 54KB - Virtual size: 54KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.edata Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.jdata Size: 5KB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rcrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ